libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the putweightedpred8fallback function at fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "libde265-0", "binary_version": "1.0.4-1ubuntu0.3" }, { "binary_name": "libde265-0-dbgsym", "binary_version": "1.0.4-1ubuntu0.3" }, { "binary_name": "libde265-dev", "binary_version": "1.0.4-1ubuntu0.3" }, { "binary_name": "libde265-examples", "binary_version": "1.0.4-1ubuntu0.3" }, { "binary_name": "libde265-examples-dbgsym", "binary_version": "1.0.4-1ubuntu0.3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "libde265-0", "binary_version": "1.0.8-1ubuntu0.2" }, { "binary_name": "libde265-0-dbgsym", "binary_version": "1.0.8-1ubuntu0.2" }, { "binary_name": "libde265-dev", "binary_version": "1.0.8-1ubuntu0.2" }, { "binary_name": "libde265-examples", "binary_version": "1.0.8-1ubuntu0.2" }, { "binary_name": "libde265-examples-dbgsym", "binary_version": "1.0.8-1ubuntu0.2" } ] }